Properties

Below the default properties of ebms-admin. For the default properties of ebms-core see here.

Override Properties

To override the default properties create the file ebms-admin.embedded.properties in the configDir and add the properties to that file.

You can also configure the basic properties at EbMSAdminPropertiesPage after you started ebms-admin. If you want to override 'advanced' properties that are not included in the ebms-admin.embedded.properties file that is created, create the file ebms-admin.embedded.advanced.properties in the configDir and add the 'advanced' properties to that file.

You can also override properties by setting them as environment variables. You can for example override property ebms.port with value 80 as follows

export ebms_port=80

This is especially useful when configuring containers

Basic Properties

• Database
• EbMS Server
• SSL
• SSL Server keystore
• SSL Client Keystore
• Truststore
• Forward Proxy
• Overflow attachments to disk
• EbMS Signature keystore
• EbMS Encryption keystore
• EbMS Message Storage
• EbMS EventListener

Default Properties

Below the contents of ebms-admin's default.properties file. These are the default settings for ebms-admin.

Database

These properties override these default ebms-core properties.

ebms.jdbc.driverClassName=org.hsqldb.jdbcDriver
ebms.jdbc.url=jdbc:hsqldb:hsql://localhost:9001/ebms
ebms.jdbc.username=sa
ebms.jdbc.password=

EbMS Server

Properties for the EbMS Server endpoint used to connect to another EbMS adapter.

ebms.host=0.0.0.0
ebms.port=8888
ebms.path=/ebms
ebms.ssl=true
ebms.connectionLimit=
ebms.queriesPerSecond=
ebms.userQueriesPerSecond=

SSL Server keystore

Holds the SSL key (and related certificates) for the EbMS Server endpoint.

# KeystoreType: JCEKS | JKS | DKS | PKCS11 | PKCS12
keystore.type=PKCS12
keystore.path=nl/clockwork/ebms/keystore.p12
keystore.password=password
keystore.defaultAlias=

SSL

https.protocols and https.cipherSuites override these default ebms-core properties. If https.requireClientAuthentication=true then the EbMS Server endpoint requires SSL client authentication.

When SSL offloading is used and the EbMS adapter does not handle incoming SSL itself (see reverse proxy example) and the EbMS adapter is using SSL client certificate validation, then the SSL client certificate can be forwarded as a Base64 DER-encoded HTTP header to the EbMS adapter. The header name can be set in https.clientCertificateHeader (since v2.16.7).

https.protocols=TLSv1.2
https.cipherSuites=TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
https.requireClientAuthentication=false
https.clientCertificateHeader=

User Interface

maxItemsPerPage=20